Sorry, what's been rescinded? I was distracted..
I hadn't heard of EV (didn't receive any emails about it, saw no news about it, didn't receive a manual in the post...*), nor did I notice it - and I'm way more security conscious than yer average user. Why? Probably because of featuritis in browsers - specifically, in my case, Firefox.
Mozilla have fiddled around with their browser (particularly the preferences section) so much in recent years that it has become irksome - there's' one of their security features where you're supposed to be able to edit a least of exception sites, where you don't want them to be flagged as a security risk. I used to be able to use this easily. Now, I simply cannot find how you are supposed to be able to add sites to that list. And trust me, the exceptions I want to add are few, and carefully chosen - I'm not the sort of user that "just wants all web pages to work, damnit!" And yes, generally, if I get a security warning from my browser, I will tend to shrug and try another site to find the information on whatever I'm looking into. And the plethora of sites that, due to GDPR tell me, in essence "We're trustworthy sites, honestly, but due to GDPR we have to ask you to accept cookies in order to show you our content" - why, I do believe they are fibbing, so I'll not use those sites, either. I am also well aware that URLs like (something).com.org.tinyurl are not to be trusted
Then there's the websites themselves - flashy this and video that and slideshows and god knows what - all designed to grab ones attention. This is where psychology comes in. Banks have websites, you can do shopping on websites, heck, the governent has a website, businesses (which have to be set up complying with the laws of some country or other) have websites - so the internet generally must be government approved/regulated,and therefore generally be safe, right? Well... no. I know that, and you know that - but I'd be surprised if most folk do.
As per one of my recent posts, we're back to the problem being that the internet is effectively run by businesses for businesses NOT for yer average member of the public. Never mind criminals, all too many businesses don't mind if they hoodwink people out of money! And they are responsible for the web having become the bloated monster of video adverts and flashy attention-stealing graphics that distract one from things like security indicators. Don't go blaming users for not noticing EV - Google itself is part of the problem (too much attention-stealing advertising) and browser makers are teh other part (too much fiddling with layouts and how things work). It's small wonder many folk wont notice discreet security features under the circumstances, nor thet even if they do, many will just throw their hands in the air and go "fuck it, I just wanna buy my shiny from that site; looks good to me" - because no-one sent them the email, manual, etc about how the web works, or the newsletter when stuff changed *, either.
*I hope it isn't necessary for me to say this but yes, I am being facetious here. My point being that when it comes to the web, users are too often expected to be mind-readers and notice or use things they've never been informed about. Would you, as IT support people, expect users at work to use software without training?